@aws-sdk/client-fms 3.556.0 → 3.564.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (14) hide show
  1. package/dist-cjs/index.js +63 -1
  2. package/dist-es/models/models_0.js +16 -0
  3. package/dist-es/protocols/Aws_json1_1.js +43 -1
  4. package/dist-types/commands/GetAdminScopeCommand.d.ts +2 -2
  5. package/dist-types/commands/GetComplianceDetailCommand.d.ts +2 -23
  6. package/dist-types/commands/GetPolicyCommand.d.ts +41 -1
  7. package/dist-types/commands/GetProtectionStatusCommand.d.ts +1 -1
  8. package/dist-types/commands/GetViolationDetailsCommand.d.ts +147 -46
  9. package/dist-types/commands/ListPoliciesCommand.d.ts +1 -1
  10. package/dist-types/commands/PutAdminAccountCommand.d.ts +1 -1
  11. package/dist-types/commands/PutPolicyCommand.d.ts +93 -2
  12. package/dist-types/models/models_0.d.ts +426 -24
  13. package/dist-types/ts3.4/models/models_0.d.ts +97 -1
  14. package/package.json +2 -3
package/dist-types/ts3.4/models/models_0.d.ts CHANGED
@@ -39,6 +39,7 @@ export interface OrganizationalUnitScope {
39
39
  export declare const SecurityServiceType: {
40
40
  readonly DNS_FIREWALL: "DNS_FIREWALL";
41
41
  readonly IMPORT_NETWORK_FIREWALL: "IMPORT_NETWORK_FIREWALL";
42
+ readonly NETWORK_ACL_COMMON: "NETWORK_ACL_COMMON";
42
43
  readonly NETWORK_FIREWALL: "NETWORK_FIREWALL";
43
44
  readonly SECURITY_GROUPS_COMMON: "SECURITY_GROUPS_COMMON";
44
45
  readonly SECURITY_GROUPS_CONTENT_AUDIT: "SECURITY_GROUPS_CONTENT_AUDIT";
@@ -248,6 +249,7 @@ export declare const ViolationReason: {
248
249
  readonly FirewallSubnetMissingVPCEndpoint: "FIREWALL_SUBNET_MISSING_VPCE_ENDPOINT";
249
250
  readonly InternetGatewayMissingExpectedRoute: "INTERNET_GATEWAY_MISSING_EXPECTED_ROUTE";
250
251
  readonly InternetTrafficNotInspected: "INTERNET_TRAFFIC_NOT_INSPECTED";
252
+ readonly InvalidNetworkAclEntry: "INVALID_NETWORK_ACL_ENTRY";
251
253
  readonly InvalidRouteConfiguration: "INVALID_ROUTE_CONFIGURATION";
252
254
  readonly MissingExpectedRouteTable: "MISSING_EXPECTED_ROUTE_TABLE";
253
255
  readonly MissingFirewall: "MISSING_FIREWALL";
@@ -313,6 +315,38 @@ export interface ResourceTag {
313
315
  Key: string | undefined;
314
316
  Value?: string;
315
317
  }
318
+ export interface NetworkAclIcmpTypeCode {
319
+ Code?: number;
320
+ Type?: number;
321
+ }
322
+ export interface NetworkAclPortRange {
323
+ From?: number;
324
+ To?: number;
325
+ }
326
+ export declare const NetworkAclRuleAction: {
327
+ readonly ALLOW: "allow";
328
+ readonly DENY: "deny";
329
+ };
330
+ export type NetworkAclRuleAction =
331
+ (typeof NetworkAclRuleAction)[keyof typeof NetworkAclRuleAction];
332
+ export interface NetworkAclEntry {
333
+ IcmpTypeCode?: NetworkAclIcmpTypeCode;
334
+ Protocol: string | undefined;
335
+ PortRange?: NetworkAclPortRange;
336
+ CidrBlock?: string;
337
+ Ipv6CidrBlock?: string;
338
+ RuleAction: NetworkAclRuleAction | undefined;
339
+ Egress: boolean | undefined;
340
+ }
341
+ export interface NetworkAclEntrySet {
342
+ FirstEntries?: NetworkAclEntry[];
343
+ ForceRemediateForFirstEntries: boolean | undefined;
344
+ LastEntries?: NetworkAclEntry[];
345
+ ForceRemediateForLastEntries: boolean | undefined;
346
+ }
347
+ export interface NetworkAclCommonPolicy {
348
+ NetworkAclEntrySet: NetworkAclEntrySet | undefined;
349
+ }
316
350
  export declare const FirewallDeploymentModel: {
317
351
  readonly CENTRALIZED: "CENTRALIZED";
318
352
  readonly DISTRIBUTED: "DISTRIBUTED";
@@ -328,6 +362,7 @@ export interface ThirdPartyFirewallPolicy {
328
362
  export interface PolicyOption {
329
363
  NetworkFirewallPolicy?: NetworkFirewallPolicy;
330
364
  ThirdPartyFirewallPolicy?: ThirdPartyFirewallPolicy;
365
+ NetworkAclCommonPolicy?: NetworkAclCommonPolicy;
331
366
  }
332
367
  export interface SecurityServicePolicyData {
333
368
  Type: SecurityServiceType | undefined;
@@ -499,6 +534,39 @@ export interface FirewallSubnetMissingVPCEndpointViolation {
499
534
  SubnetAvailabilityZone?: string;
500
535
  SubnetAvailabilityZoneId?: string;
501
536
  }
537
+ export declare const EntryType: {
538
+ readonly CustomEntry: "CUSTOM_ENTRY";
539
+ readonly FMSManagedFirstEntry: "FMS_MANAGED_FIRST_ENTRY";
540
+ readonly FMSManagedLastEntry: "FMS_MANAGED_LAST_ENTRY";
541
+ };
542
+ export type EntryType = (typeof EntryType)[keyof typeof EntryType];
543
+ export interface EntryDescription {
544
+ EntryDetail?: NetworkAclEntry;
545
+ EntryRuleNumber?: number;
546
+ EntryType?: EntryType;
547
+ }
548
+ export declare const EntryViolationReason: {
549
+ readonly EntryConflict: "ENTRY_CONFLICT";
550
+ readonly IncorrectEntryOrder: "INCORRECT_ENTRY_ORDER";
551
+ readonly MissingExpectedEntry: "MISSING_EXPECTED_ENTRY";
552
+ };
553
+ export type EntryViolationReason =
554
+ (typeof EntryViolationReason)[keyof typeof EntryViolationReason];
555
+ export interface EntryViolation {
556
+ ExpectedEntry?: EntryDescription;
557
+ ExpectedEvaluationOrder?: string;
558
+ ActualEvaluationOrder?: string;
559
+ EntryAtExpectedEvaluationOrder?: EntryDescription;
560
+ EntriesWithConflicts?: EntryDescription[];
561
+ EntryViolationReasons?: EntryViolationReason[];
562
+ }
563
+ export interface InvalidNetworkAclEntriesViolation {
564
+ Vpc?: string;
565
+ Subnet?: string;
566
+ SubnetAvailabilityZone?: string;
567
+ CurrentAssociatedNetworkAcl?: string;
568
+ EntryViolations?: EntryViolation[];
569
+ }
502
570
  export declare const DestinationType: {
503
571
  readonly IPV4: "IPV4";
504
572
  readonly IPV6: "IPV6";
@@ -652,6 +720,23 @@ export interface NetworkFirewallUnexpectedGatewayRoutesViolation {
652
720
  RouteTableId?: string;
653
721
  VpcId?: string;
654
722
  }
723
+ export interface CreateNetworkAclAction {
724
+ Description?: string;
725
+ Vpc?: ActionTarget;
726
+ FMSCanRemediate?: boolean;
727
+ }
728
+ export interface CreateNetworkAclEntriesAction {
729
+ Description?: string;
730
+ NetworkAclId?: ActionTarget;
731
+ NetworkAclEntriesToBeCreated?: EntryDescription[];
732
+ FMSCanRemediate?: boolean;
733
+ }
734
+ export interface DeleteNetworkAclEntriesAction {
735
+ Description?: string;
736
+ NetworkAclId?: ActionTarget;
737
+ NetworkAclEntriesToBeDeleted?: EntryDescription[];
738
+ FMSCanRemediate?: boolean;
739
+ }
655
740
  export interface EC2AssociateRouteTableAction {
656
741
  Description?: string;
657
742
  RouteTableId: ActionTarget | undefined;
@@ -700,6 +785,12 @@ export interface FMSPolicyUpdateFirewallCreationConfigAction {
700
785
  Description?: string;
701
786
  FirewallCreationConfig?: string;
702
787
  }
788
+ export interface ReplaceNetworkAclAssociationAction {
789
+ Description?: string;
790
+ AssociationId?: ActionTarget;
791
+ NetworkAclId?: ActionTarget;
792
+ FMSCanRemediate?: boolean;
793
+ }
703
794
  export interface RemediationAction {
704
795
  Description?: string;
705
796
  EC2CreateRouteAction?: EC2CreateRouteAction;
@@ -710,6 +801,10 @@ export interface RemediationAction {
710
801
  EC2AssociateRouteTableAction?: EC2AssociateRouteTableAction;
711
802
  EC2CreateRouteTableAction?: EC2CreateRouteTableAction;
712
803
  FMSPolicyUpdateFirewallCreationConfigAction?: FMSPolicyUpdateFirewallCreationConfigAction;
804
+ CreateNetworkAclAction?: CreateNetworkAclAction;
805
+ ReplaceNetworkAclAssociationAction?: ReplaceNetworkAclAssociationAction;
806
+ CreateNetworkAclEntriesAction?: CreateNetworkAclEntriesAction;
807
+ DeleteNetworkAclEntriesAction?: DeleteNetworkAclEntriesAction;
713
808
  }
714
809
  export interface RemediationActionWithOrder {
715
810
  RemediationAction?: RemediationAction;
@@ -774,13 +869,14 @@ export interface ResourceViolation {
774
869
  DnsRuleGroupPriorityConflictViolation?: DnsRuleGroupPriorityConflictViolation;
775
870
  DnsDuplicateRuleGroupViolation?: DnsDuplicateRuleGroupViolation;
776
871
  DnsRuleGroupLimitExceededViolation?: DnsRuleGroupLimitExceededViolation;
777
- PossibleRemediationActions?: PossibleRemediationActions;
778
872
  FirewallSubnetIsOutOfScopeViolation?: FirewallSubnetIsOutOfScopeViolation;
779
873
  RouteHasOutOfScopeEndpointViolation?: RouteHasOutOfScopeEndpointViolation;
780
874
  ThirdPartyFirewallMissingFirewallViolation?: ThirdPartyFirewallMissingFirewallViolation;
781
875
  ThirdPartyFirewallMissingSubnetViolation?: ThirdPartyFirewallMissingSubnetViolation;
782
876
  ThirdPartyFirewallMissingExpectedRouteTableViolation?: ThirdPartyFirewallMissingExpectedRouteTableViolation;
783
877
  FirewallSubnetMissingVPCEndpointViolation?: FirewallSubnetMissingVPCEndpointViolation;
878
+ InvalidNetworkAclEntriesViolation?: InvalidNetworkAclEntriesViolation;
879
+ PossibleRemediationActions?: PossibleRemediationActions;
784
880
  }
785
881
  export interface ViolationDetail {
786
882
  PolicyId: string | undefined;
package/package.json CHANGED
@@ -1,7 +1,7 @@
1
1
  {
2
2
  "name": "@aws-sdk/client-fms",
3
3
  "description": "AWS SDK for JavaScript Fms Client for Node.js, Browser and React Native",
4
- "version": "3.556.0",
4
+ "version": "3.564.0",
5
5
  "scripts": {
6
6
  "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
7
7
  "build:cjs": "node ../../scripts/compilation/inline client-fms",
@@ -20,9 +20,8 @@
20
20
  "dependencies": {
21
21
  "@aws-crypto/sha256-browser": "3.0.0",
22
22
  "@aws-crypto/sha256-js": "3.0.0",
23
- "@aws-sdk/client-sts": "3.556.0",
24
23
  "@aws-sdk/core": "3.556.0",
25
- "@aws-sdk/credential-provider-node": "3.556.0",
24
+ "@aws-sdk/credential-provider-node": "3.564.0",
26
25
  "@aws-sdk/middleware-host-header": "3.535.0",
27
26
  "@aws-sdk/middleware-logger": "3.535.0",
28
27
  "@aws-sdk/middleware-recursion-detection": "3.535.0",